Welcome
to the PERMIS web site

There are two separate aspects to securing access to your computer based
resources: determining who the users are, and determining what they are
allowed to do. The first of these is called authentication, the second
is called authorisation (or privilege management). PERMIS is an authorisation
system that complements your existing authentication system.

So...

What does PERMIS do for you?

It helps to control access to your computer resources

When users request access to your resources, PERMIS makes the access control
decisions for you based on your access control policies and the roles of
the users

It uses only your policies, and makes sure they have not been tampered
with first

It allows you to delegate to trusted individuals the ability to assign
roles to users on your behalf

It makes sure that the trusted individuals do not exceed their delegated
authority

It supports dynamic delegation of authority, which allows any user with
a role to delegate it to other users in the same group

...and

What do you have to do for PERMIS?

Define who your users are, by defining the user groups and the roles that
users can have

Write your authorisation policy

Assign roles to users or delegate this task to others

Establish agreements with other service providers, so that your users can
use their resources and their users can use your resources